Important Magento 2.4 Updates To Security & Performance

Being the major release of our favorite e-commerce platform, Magento 2.4 comes with lots of performance and security updates that can better your site in various ways. Magento 2.4 gives you the ability to access the most cutting-edge innovations within the industry as well as provide the best features for your website.

In this blog, we will go through some of the key Magento 2.4 updates for Magento Commerce that merchants should look into.


Multiple Magento 2.4 updates can effectively enhance user experience while increasing security. Below are some of the key updates for B2B businesses:

  • Approval workflows that benefit both B2B sellers and buyers
  • The flexibility for users to accept purchasing policies regardless of payment method
  • Personalized shipping methods
  • Faster requisition list creation
  • New GraphQL APIs to improve B2B headless capabilities
  • Google reCAPTCHA on the new company request form to reduce the creation of fraudulent accounts

Site-wide Analysis Tool (SWAT)

This is another great feature included in Magento 2.4 updates. In September 2020, Adobe launched automated monthly delivery of Site-Wide Analysis Tool reports to Magento Commerce Cloud users. Currently, The SWAT Portal is fully integrated with the Magento Admin Panel.  Therefore, Commerce Cloud users can have real-time access to the Site-Wide Analysis Tool dashboard that shows:

  • Site performance
  • Site health
  • Functionality
  • Suggestions to fix issues encountered

Enhanced security

While Magento is a safe platform, they’ve still taken the opportunity to boost their protection by closing remote code execution (RCE) and cross-site scripting (XSS) weaknesses. There are about 30 other security enhancements, 226 GitHub issues that have been resolved and more than 100 core code fixes. Plus, Magento has added CAPTCHA to order placement and WEB API endpoints related to the information of payments.

Other security highlights are as follows:

  • Enable obligatory Two-Factor Authentication (2FA) for Admin accounts and optional 2FA for Magento accounts, as well as Multi-Factor Authentication for Cloud SSH access
  • Provide support for security.txt file
  • Enable default disabling of data rendering to prevent JavaScript malware

Agile content creation & enhanced storefront experience

The new Media Gallery allows bulk image operations, duplicate detection, and custom metadata. Magento also reduces the cost and time to market for headless storefronts as they continue to build out PWA Studio components and expand GraphQL coverage for key Magento capabilities, including product reviews, gift options, and rewards.

Magento 2.3.5-p2 Security-Only Patch

Magento 2.4 updates also come with a Security-Only Patch, Magento 2.3.5-p2, to fix some security and performance problems with the last version. It is recommended that users download the most updated version of the program to stay ahead of the curve.

Planning for PHP 7.3 end of support

In December, PHP 7.3 will reach its end of support. To ensure compatibility and compliance for the 2.3 release line, Magento will add support for PHP 7.4 to Magento 2.3.7 release in May. This Magento 2.4 update will bring backward-incompatible changes into 2.3.7 that may affect users’ websites and extensions. To avoid interruptions, all merchants are encouraged to adopt Magento’s latest minor release 2.4.x, which supports PHP 7.4, or update to 2.3.7 once it’s available.

To sum up

That’s all about the key security and performance updates in Magento Commerce 2.4. Let us know your point of view on these Magento 2.4 updates in the comments!

Quinn T.

Quinn T. is an enthusiastic copywriter at ConnectPOS - a leading Point of Sale provider. Focusing on the retail industry, she has researched and followed closely to various technology solutions that support an omnichannel journey.

Recent Posts

Which Types Of Business Should Apply In-Store Pickup?

Many big-box stores and smaller merchants with an online presence are increasingly giving "buy online,…

1 day ago

What You Need To Know About Contactless Payment

The phrase contactless payment refers to a safe method for consumers to purchase items or…

1 day ago

3 Contactless Payment Android Gateways That You Should Know

Almost all forms of companies that deal with money transactions would need contactless payment Android…

2 days ago

What Makes A Great Click And Collect Service?

Over the last few years, click and collect has become increasingly popular, with the great…

2 days ago

Best 3 Contactless Payment Apps That You Should Know

Contactless payment apps have been widely available, and now become a favored alternative for many…

3 days ago

How To Purchase Contactless Payment On Phone In-Store?

Consumers are quickly getting used to contactless payment on phone as a convenient way to…

3 days ago
How can we help you ?
Start Free Trial or Book Demo !